I took the CISSP in 2004 with two friends from work. I failed and they both passed. Here’s why-
In 2001 I took my first IT certification test- Cisco’s CCNA. I had heard this was a difficult exam but didn’t have an opportunity to actually talk to someone who had taken it. Because it was my first cert, I was very scared and nervous. I had absolutely zero confidence in my ability to pass it. Fortunately, I was also leaving the Marine Corps and was even more scared about being unemployed.
I paid a friend cash and he let me use his credit card to order a CCNA book and register or the exam. I studied for about a month, going through what I would describe as an “academic fight or flight” scenario. I was reading the book every chance I got, more than was probably healthy. I could do hexadecimal conversions in my sleep and subnet during breakfast.
When the big day came to take the exam I felt reasonable confident. The exam was schedule to last 90 minutes, I finished in 17. Passed with flying colors. Either the test was much easier than I expected or I simply over studied for it. I assumed the latter and chalked it up as a learning experience.
Fast forward to 2003 and the CISSP. The book was bigger than the other exams but I wasn’t worried. I was smart, why should I worry? Don’t get me wrong, I studied hard, usually reading every day. I planned a study schedule so that I would be finished reading the book about a week before I took the exam. My friends were putting in more work than I was, but they didn’t have the experience acing test like I did.
On the day of the test, I finished in a little more than two hours, that’s faster than most people. I was reasonably sure that I passed. Why wouldn’t I? I had never failed before, it just wasn’t something that I thought about. Two week later my two friends got the “Congratulations” e-mail, and I got the “Thank you” e-mail. I was devastated. Not only had I failed, but my two friends both passed. I learned a few things from that experience.
- Understanding concepts is more important than memorizing facts that you assume will be on the test
- You can’t over study for the CISSP, the more you study, the more you will be able to apply the concepts
- Your can’t plan on studying “just enough to pass”
I rescheduled the exam and started over. The healthy dose of embarrassment from failing gave me the motivation to buckle down and really start learning the concepts.
Image courtesy Zach Klein
No related posts.
Follow us on Twitter
Follow us on Facebook
Subscribe to RSS Feed
I can’t really explain why, but for some reason reading about how someone else fails the exam makes me feel a little better :)
I remember when you and Madden were studying for those exams.
Yup, those were Cisco exams. I ended up letting those all expire and concentrating on security stuff.
Well in 2008 i walked in… write the CISSP exam without any study and passed ;0) not that i am a standing CISSP or anything… but i also have to say… i have been playing with linux and creating my own distro’s my whole life.
From the time that Enterprises laughted at you when you say “I Know Linux” it actually prevented you from getting a job in the old days… Well here in South Africa in anycase
compiling and playing with it. and we All know that Linux runs all those apps that they use in Security, firewalls, IPS/IDS ;0) all those nifty things